Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Oracle GlassFish Server 3.1.2.18 and below allows /common/logViewer/logViewer.jsf XSS. A malicious user can cause an administrator user to supply dangerous content to the vulnerable page, which is then reflected back to the user and executed by the web browser. The most common mechanism for delivering malicious content is to include it as a parameter in a URL that is posted publicly or e-mailed directly to victims. NOTE: This vulnerability only affects products that are no longer supported by the maintainer
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Oracle GlassFish Server 跨站脚本漏洞
Vulnerability Description
Oracle GlassFish Server是美国甲骨文(Oracle)公司的一个应用软件。Oracle GlassFish Server 使用 GlassFish Server 开源版构建,提供灵活、轻量且可用于生产的 Java EE 6 应用服务器。 Oracle GlassFish Server 存在安全漏洞,该漏洞源于Oracle GlassFish Server 3.1.2.18及以下版本允许 /common/logViewer/logViewer.jsf XSS。攻击者可利用该漏洞导致管理员
CVSS Information
N/A
Vulnerability Type
N/A